‪TYPO3CMS  ‪main
ContentSecurityPolicyReporter.php
Go to the documentation of this file.
1 <?php
2 
3 declare(strict_types=1);
4 
5 /*
6  * This file is part of the TYPO3 CMS project.
7  *
8  * It is free software; you can redistribute it and/or modify it under
9  * the terms of the GNU General Public License, either version 2
10  * of the License, or any later version.
11  *
12  * For the full copyright and license information, please read the
13  * LICENSE.txt file that was distributed with this source code.
14  *
15  * The TYPO3 project - inspiring people to share!
16  */
17 
19 
20 use Psr\Http\Message\ResponseInterface;
21 use Psr\Http\Message\ServerRequestInterface;
22 use Psr\Http\Server\RequestHandlerInterface;
26 
31 {
32  public function ‪process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
33  {
34  $site = $request->getAttribute('site');
35  $scope = ‪Scope::frontendSite($site);
36  if ($this->‪isCspReport($scope, $request)) {
37  // @todo check/store headers `origin` + `referer`
38  // @todo create report, then call persist, then dispatch new event
39  $this->‪persistCspReport($scope, $request);
40  return new ‪NullResponse();
41  }
42  return $handler->handle($request);
43  }
44 }
‪TYPO3\CMS\Core\Http\NullResponse
Definition: NullResponse.php:26
‪TYPO3\CMS\Core\Middleware\AbstractContentSecurityPolicyReporter\isCspReport
‪isCspReport(Scope $scope, ServerRequestInterface $request)
Definition: AbstractContentSecurityPolicyReporter.php:107
‪TYPO3\CMS\Core\Middleware\AbstractContentSecurityPolicyReporter\persistCspReport
‪persistCspReport(Scope $scope, ServerRequestInterface $request)
Definition: AbstractContentSecurityPolicyReporter.php:44
‪TYPO3\CMS\Frontend\Middleware\ContentSecurityPolicyReporter
Definition: ContentSecurityPolicyReporter.php:31
‪TYPO3\CMS\Frontend\Middleware
Definition: BackendUserAuthenticator.php:18
‪TYPO3\CMS\Core\Security\ContentSecurityPolicy\Scope
Definition: Scope.php:30
‪TYPO3\CMS\Core\Middleware\AbstractContentSecurityPolicyReporter
Definition: AbstractContentSecurityPolicyReporter.php:36
‪TYPO3\CMS\Core\Security\ContentSecurityPolicy\Scope\frontendSite
‪static frontendSite(?SiteInterface $site)
Definition: Scope.php:54
‪TYPO3\CMS\Frontend\Middleware\ContentSecurityPolicyReporter\process
‪process(ServerRequestInterface $request, RequestHandlerInterface $handler)
Definition: ContentSecurityPolicyReporter.php:32